security-tools/sigma-rules
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
50501bb40fdd460042179583ea238f6cd63b2ba8
sigma-rules/rules/integrations
T
History
Austin Songer 50501bb40f [New Rule] Azure Full Network Packet Capture Detected (#1420) 
* Create defense_evasion_virtual_network_device_modified.toml

* Update defense_evasion_virtual_network_device_modified.toml

* Update defense_evasion_virtual_network_device_modified.toml

* Update defense_evasion_virtual_network_device_modified.toml

* Update defense_evasion_virtual_network_device_modified.toml

* Update defense_evasion_virtual_network_device_modified.toml

* Delete defense_evasion_virtual_network_device_modified.toml

* Create exfiltration_azure_full_network_packet_capture_detected.toml

* Update exfiltration_azure_full_network_packet_capture_detected.toml

* Update exfiltration_azure_full_network_packet_capture_detected.toml

* Update exfiltration_azure_full_network_packet_capture_detected.toml

* Update exfiltration_azure_full_network_packet_capture_detected.toml

* Update exfiltration_azure_full_network_packet_capture_detected.toml

* Update exfiltration_azure_full_network_packet_capture_detected.toml

* Update exfiltration_azure_full_network_packet_capture_detected.toml

* Update exfiltration_azure_full_network_packet_capture_detected.toml

* Update rules/integrations/azure/exfiltration_azure_full_network_packet_capture_detected.toml

Co-authored-by: Jonhnathan <jonhnathancesar@gmail.com>

* Update rules/integrations/azure/exfiltration_azure_full_network_packet_capture_detected.toml

Co-authored-by: Jonhnathan <jonhnathancesar@gmail.com>

* Update exfiltration_azure_full_network_packet_capture_detected.toml

* Update exfiltration_azure_full_network_packet_capture_detected.toml

* Rename exfiltration_azure_full_network_packet_capture_detected.toml to credential_access_azure_full_network_packet_capture_detected.toml

Co-authored-by: Justin Ibarra <brokensound77@users.noreply.github.com>
Co-authored-by: Jonhnathan <jonhnathancesar@gmail.com>
2021-10-15 23:06:27 -03:00
..
aws
[New Rule] AWS RDS Snapshot Restored (#1312)
2021-10-15 16:05:00 -03:00
azure
[New Rule] Azure Full Network Packet Capture Detected (#1420)
2021-10-15 23:06:27 -03:00
cyberarkpas
[Fleet] Track integrations in folder and metadata (#1372)
2021-07-21 15:24:56 -06:00
endpoint
Revert #1440 new endpoint promotion rule (#1470)
2021-09-03 08:07:20 -06:00
gcp
[New Rule] GCP Kubernetes Rolebindings Created or Patched (#1267)
2021-10-15 15:42:25 -03:00
google_workspace
[Rule tuning] Revise rule description and other text (#1398)
2021-08-03 13:07:47 -08:00
o365
[New Rule] Microsoft 365 - Mass download by a single user (#1348)
2021-10-15 16:01:50 -03:00
okta
Made these pull requests before the directory restructure. (#1517)
2021-10-05 09:29:40 -03:00